About Insider Threat Research: A History of Our Work
Insiders can be current or former employees and contractors who have or had authorized access to their organization’s system and networks; who are familiar with internal policies, procedures, and technology; and who can exploit that knowledge to facilitate attacks and even collude with external attackers. Since 2001, insider threat research conducted by the CERT Division has focused on gathering data about actual malicious insider acts, including espionage, IT sabotage, fraud, theft of confidential or proprietary information, and potential threats to our nation’s critical infrastructures.
Our ongoing insider threat research provides comprehensive analysis of the insider threat problem. Specific examples of our work are described below.
Case Analysis and Best Practices
Our research started in partnership with the U.S. Department of Defense (DoD) Personnel Security Research Center (PERSEREC), examining cyber insider threats in…
View original post 638 more words